EUVD-2018-2300

Malware in sbrugna...

EUVD-2022-24442

Malicious code in bioql PyPI...

PT-2025-37718

Name of the Vulnerable Software and Affected Versions Frappe versions prior to 15.72.0 Frappe versions prior to 14.96.10 Description The add tag function at frappe/desk/doctype/tag/tag.py is susceptible to SQL Injection. This allows an attacker to extract information from databases by injecting a...

CVE-2021-46027

mysiteforme, as of 19-12-2022, has a CSRF vulnerability in the background blog management. The attacker constructs a CSRF load. Once the administrator clicks a malicious link, a blog tag will be added...

Cross site scripting

admin/themes/default/items/tag-form.php in Omeka before 2.6.1 allows XSS by adding or editing a tag...

CVE-2018-10224

An issue was discovered in YzmCMS 3.8. There is a CSRF vulnerability that can add a tag via /index.php/admin/tag/add.html...

CVE-2018-10224

An issue was discovered in YzmCMS 3.8. There is a CSRF vulnerability that can add a tag via /index.php/admin/tag/add.html...

CVE-2018-10224

CVE-2018-10224 describes a CSRF vulnerability in YzmCMS 3.8 that allows adding a tag via /index.php/admin/tag/add.html. The connected documents consistently reference this vulnerability in YzmCMS 3.8 and identify the attack surface as the admin tag-add endpoint. The CVE details do not provide exp...

YzmCMS Cross-Site Request Forgery Vulnerability

YzmCMS is an open source CMS Content Management System developed by Chinese programmer Yuan Zhimeng. A cross-site request forgery vulnerability exists in YzmCMS version 3.8. Remote attackers can use the /index.php/admin/tag/add.html page to add a Tag using this vulnerability...